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1.Refer to the exhibits showing SMTP limits (Session Profile ? SMTP Limits), and 


domain settings (Domain Settings, and Domain Settings ? Other) of a FortiMail 
device. 


Session Profile—SMTP Limits 


Session Profile 


Profile name | Example_Session 


Comment 


© SMTP Limits 
Restrict number of EHLO/HELOs per session to 
Restrict number of email per session to 


Restrict number of recipients per email to 


Cap message size (KB) at 
Cap header size (KB) at 


Maximum number of NOOPs allowed for each connection 


Maximum number of RSETs allowed for each connection 


Domain Settings 


FortiMail 


Domain name example.com 
Relay type | Host 
SMTP server 10.29.1.45 Port) 25 [Testu] 
CD Use SMTPS 
Fallback SMTP server _ [Port 25 [Test] 
@Œ@ UseSMTPS its 
CD Relay Authentication 


an 


Se 


Domain Settings—Other 


Other 


Webmail theme _ Use system settings 


Webmail language " .-Default-- | 


Maximum message size (KB) 204800 | 
SMTP greeting (EHLO/HELO) name (as client) Use system host name +| 
IP pool | --None-- v Direction Delivering v 
CD Remove received header of outgoing email 
© Use global bayesian database 

Bypass bounce verification 


© Email continui 


Which message size limit in KB will the FortiMail apply to outbound email? 

A. 204300 

B. There is no message size limit for outbound email from a protected domain. 
C. 10240 

D. 51200 

Answer: D 


2.A FortiMail device is configured with the protected domain example.com. 

If none of the senders is authenticated, which two envelope addresses will require an 
access receive rule? (Choose two.) 

A. MAIL FROM: support@example.org RCPT TO: marketing@example.com 

B. MAIL FROM: mis@hosted.net RCPT TO: noc@example.com A 

C. MAIL FROM: accounts@example.com RCPT TO: sales@biz.exatfiple.com 
D. MAIL FROM: training@example.com RCPT TO: students@exférnal.org 
Answer: A, B o 
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3.Refer to the exhibit, which shows a topology diagranPor two separate email 
domains. G 
ge 
mx.examplel .org er \ mx.example2.com 
"g N P Atann N 
~ <> í Internet } à > 
NS \ J W 
t ia elle 
> DNS server ~~ 
UserA ~ User B 
A@examplel.org B@example2.com 
a 


Which two statements correctly describe how an email message is delivered from 
User A to User B? (Choose two.) 

A. mx.example1.org will forward the email message to the MX record that has the 
lowest preference. 

B. User B will retrieve the email message using either POP3 or IMAP. 

C. User A’s MUA will perform a DNS MX record lookup to send the email message. 
D. The DNS server will act as an intermediary MTA. 

Answer: A, B 


4.Refer to the exhibit which shows the output of an email transmission using a telnet 
session. 


220 mx.internal.lab ESMTP Smtpd 
EHLO 10.0.1.10 
250-mx.internal.lab Hello [10.0.1.10] 
250-SIZE 10485760 
250-DSN 
250-AUTH LOGIN PLAIN DIGEST-MDS CRAM-MD5 
MAIL FROM: <extuser@external.lab> 
250 2.1.0 <extuser@external.lab>... Sender ok 
RCPT TO: <useri@internal.lab> 
250 2.1.5 <userl@internal.lab>... Recipient ok 
DATA 
354 Enter mail, end with "." on a line by itself 
From: External User 1 <extuser@external.lab> 
To: Mail User 1 <userl@internal.lab> 
Date: 30 Jun 2021 12:24:54 +0100 
Subject: Hello, World! 
The quick brown fox jumped over the lazy dog. 
250 Message accepted for delivery 
QUIT 
221 mx. internal .lab closing connection 
X 
What are two soir Donas about this SMTP session? (Choose two.) 
A. The SMTP efivelope addresses are different from the message header addresses. 
B. The "250 Message accepted for delivery" message is part of the message body. 
C. The "Subject" is part of the message header. 


D. The "220 mx.internal.lab ESMTP Smtpd" message is part of the SMTP banner. 
Answer: C, D 


5.Which two features are available when you enable HA centralized monitoring on 
FortiMail? (Choose two.) 

A. Policy configuration changes of all cluster members from the primary device. 

B. Mail statistics of all cluster members on the primary device. 


C. Cross-device log searches across all cluster members from the primary device. 
D. Firmware update of all cluster members from the primary device 
Answer: B, C 


6.Refer to the exhibit which shows a command prompt output of a telnet command. 


Which configuration change must you make to prevent the banner from displaying the 
FortiMail serial number? Ká 
A. Change the host name R 
B. Add a protected domain 
C. Configure a local domain name > 
D. Change the operation mode <? 
Answer: A ae 

aS 
7.Refer to the exhibits which shows a DLP scafi profile configuration (DLP Scan Rule 
1 and DLP Scan Rule 2) from a FortiMail device. 
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‘DLP Scan Rule 1 
Message Scan Rule 
Name DLPOut 


comment S 


£ 


Scan Rule elua Exceptions 


Match all conditions Match any condition 


sf New.. [A Edit Delet Total 3 


Condition 

Body contains sensitive data "Credit_Card_Number™ 
Attachment contains sensitive data "Credit_Card_Number” 
Subject contains Credit Card 


DLP Scan Rule 2 


Message Scan Rule 


Name DLPOut 


comment @ 


+ New... GA Eci bi Total 1 


ID... Condition 


1 Sender contains sales@example.com 


x 
Which two message types. dil trigger this DLP scan rule? (Choose two.) 
A. An email that contains erect card numbers in the body, attachment, and subject 
will trigger this scan ple 
B. An email sent fpf salesdinternal. lab will trigger this scan rule, even without 
matching any agtiditions. 
C. An email message with a subject that contains the term "credit card’ will trigger this 
scan rule. 
D. An email message that contains credit card numbers in the body will trigger this 
scan rule. 
Answer: C, D 


8.A FortiMail administrator is concerned about cyber criminals attempting to get 
sensitive information from employees using whaling phishing attacks. 
What option can the administrator configure to prevent these types of attacks? 


A. Impersonation analysis 

B. Dictionary profile with predefined smart identifiers 
C. Bounce tag verification 

D. Content disarm and reconstruction 

Answer: A 


9.A FortiMail is configured with the protected domain example.com. 

On this FortiMail, which two envelope addresses are considered incoming? (Choose 
two.) 

A. MAIL FROM: mis@hosted.net RCPT TO: noc@example.com 

B. MAIL FROM: accounts@example.com RCPT TO: sales@external.org 

C. MAIL FROM: support@example.com RCPT TO: marketing@example.com 

D. MAIL FROM: training@external.org RCPT TO: students@exteragt-org 


Answer: A, C $ 
O 
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10.Refer to the exhibits which show a topology diagram {fopology), and a 
configuration element (Access Control Rule). Re 
K 

Topology 


Protected Domain: 
example.com 


FML-1 2 
Server mode 


Tae 
AGS: 


10.29.1.0/24 


Access Contro! Rule 


Access Control Rule 


Status O 
Sender User Defined 


x 


Recipient User Defined 


Source IP/Netmask 
0.0.0.0/0 


Reverse DNS pattern 


Authentication status | Any 
TLS profile --None-- 
Action Reject 


Comment 


An anaa wa enforce authentication on FML-1 for all outbound email from 
the example.com domain. 

Which two settings should be used to configure the access receive rule? (Choose 
two.) 

A. The Sender IP/netmask should be set to 10.29.1.0/24. 

B. The Action should be set to Reject 

C. The Recipient pattern should be set to » @example. com. 

D. The Authentication status should be set to Authenticated 

Answer: A, D 
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